CVE-2026-2959 – D-Link DWR-M960 formNewSchedule sub_44E0F8 stack-based overflow

CVE ID : CVE-2026-2959

Published : Feb. 23, 2026, 12:16 a.m. | 49 minutes ago

Description : A vulnerability was detected in D-Link DWR-M960 1.01.07. Affected by this vulnerability is the function sub_44E0F8 of the file /boafrm/formNewSchedule. Performing a manipulation of the argument url results in stack-based buffer overflow. Remote exploitation of the attack is possible. The exploit is now public and may be used.

Severity: 9.0 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…